| commit | f8fc8b3f17de321a8f1883290b076ad65d72184f | [log] [tgz] |
|---|---|---|
| author | Ethan Lee <ethanalee@google.com> | Fri Dec 26 18:43:42 2025 +0000 |
| committer | Gopher Robot <gobot@golang.org> | Fri Dec 26 18:17:51 2025 -0800 |
| tree | ba587dbadd4003d0997101cf1f0726c1cd5677f9 | |
| parent | 428a44256d58883701aab5a5fd23b9b94451bc87 [diff] |
all: remove O(N^2) alias check and redundant disk I/O TestLintReports was hitting the 10-minute timeout in CI due to scaling bottlenecks as the vulnerability database grows. This change optimizes the test to scale linearly with the number of reports. - Eliminate redundant disk I/O by retrieving reports directly from the report.LocalClient's memory instead of re-reading and re-parsing YAML files from disk inside every parallel subtest. - Optimize the duplicate alias check from O(N^2) to O(N) by pre-building a map. This replaces the repeated calls to ReportsByAlias which scaled poorly. Change-Id: I76d9fae0c8dae0dc8d719902aa3e8bbcad2dccb8 Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/732800 Auto-Submit: Ethan Lee <ethanalee@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Roland Shoemaker <roland@golang.org>
This repository contains the infrastructure and internal reports to create the Go Vulnerability Database.
Check out https://go.dev/security/vuln for more information about the Go vulnerability management system.
Click here to report a public vulnerability in the Go ecosystem, or give feedback about the project.
The privacy policy for govulncheck can be found at https://vuln.go.dev/privacy.
Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.
Database entries are distributed under the terms of the CC-BY-4.0 license. See go.dev/security/vuln/database for information on how to access these entries.